Data security

Predators often target boys ages 14 to 17, demanding money or using deepfakes to extort them.

A critical U.S. cybersecurity law sunsets Sept. 30, and banks say losing it would weaken defenses against hackers.

The database contained internal user emails, KPI report templates and other internal data, but no personal or financial customer data.

The American Fintech Council urged a federal court to deny requests by banking groups to stay the Consumer Financial Protection Bureau's open banking rule compliance dates while litigation is ongoing.

Attackers used stolen vendor credentials to move $130M, underscoring vulnerabilities in real-time payment systems.

The incident appears connected to recent social engineering campaigns, including attacks tied to Salesforce.

Worries that information can be kept safe is the top issue that's holding back artificial intelligence-driven tech upgrades at regional banks and credit unions.

Scattered Spider, a cybercrime gang whose targets include banks, has seen five of its members arrested for SIM-swapping and phishing schemes that stole millions.

The Consumer Financial Protection Bureau initiated a new rulemaking process for its open banking rule with a focus on who can serve as a representative for the consumer and whether banks can charge fees to third parties for consumer data.

Consumer advocates are urging lawmakers to hold hearings on the Consumer Financial Protection Bureau's new open banking rule and whether Congress authorized banks to charge fees for data access.

The timing of the breach at Connex aligns with data breaches by threat actor ShinyHunters, which uses phone calls to socially engineer victim organizations.

Theft of paper checks and their use in identity theft constitute a major blind spot in the private sector's fraud detection networks. Banks and regulators need to come together to find solutions.

The security problem affects organizations with a hybrid Exchange environment, running applications in both on-premises servers and Microsoft's cloud.

With federal oversight easing, Rhode Island joins states pushing cybersecurity laws for finance companies not covered by federal bank regulators.

A threat group used physical implants and evasive malware to infiltrate ATM networks and attempt fraudulent withdrawals. Here are their tactics and techniques.

Companies that lack artificial intelligence governance may spend hundreds of thousands of dollars more in responding to cyberattacks, IBM found.

U.S. banks should look to Sweden, where the identity verification measures put in place by banks also give users access to both government and private-sector platforms.

A report Wednesday detailed Scattered Spider's advanced social engineering tactics and the escalating threat the group poses to financial institutions.

American Banker's Frictionless Fraud report finds not all institutions are well assured their customer verification tools can keep up with new schemes.

Texting a password recovery link to a customer presents the risk of someone else taking over the account. Researchers found this happens somewhat frequently.